Fortinet enhances FortiEndpoint with AI controls and data loss prevention

▼ Summary
– FortiEndpoint now provides centralized visibility and control over AI application and agent usage, including shadow AI and unauthorized tools.
– Native data loss prevention (DLP) inspects sensitive data exchanged with AI applications and provides real-time user coaching.
– FortiAI-Assist enables security teams to use natural language for event investigation, summary generation, and policy recommendations.
– Dynamic risk and compliance scoring allows adaptive zero-trust access decisions based on real-time endpoint health and risk posture.
– These capabilities are delivered through one agent, one console, and one license, integrated with the Fortinet Security Fabric.
Fortinet has unveiled a series of enhancements for its unified endpoint platform, FortiEndpoint, aimed at helping organizations securely adopt AI, safeguard sensitive data, and minimize overall risk. The update introduces AI visibility and governance, native data security, endpoint risk scoring, and FortiAI-assisted operations,all integrated directly into the platform. This consolidation allows security teams to better manage AI usage, reduce the exposure of critical data, enforce risk-aware access policies, and simplify security operations across dispersed environments.
“As environments grow more complex and AI-driven, organizations need a simpler, more effective way to manage security. The Fortinet Security Fabric is designed to converge essential security and networking functions across the enterprise, helping customers cut complexity, boost visibility, and enhance protection. With FortiEndpoint, we’re extending that strategy by bringing together security, secure access, data security, AI visibility, and assisted operations in a single, unified endpoint platform,all delivered through one agent, one console, and one license,” said Michael Xie, President and CTO of Fortinet.
A platform-based approach to endpoint security in the AI era
As AI-powered agents and applications become standard in daily workflows, organizations require better visibility, stronger governance, and integrated protection to enable AI securely while reducing endpoint risk and protecting sensitive data. This urgency is amplified as adversaries accelerate their tactics, exploiting gaps across users, devices, applications, and data with growing sophistication. Security teams face mounting pressure from fragmented tools covering protection, detection and response, secure access, and data security,tools that can slow operations and limit visibility.
FortiEndpoint builds on the consolidation strategy first previewed at Fortinet Accelerate 2026. It now unifies AI visibility and governance, endpoint protection, detection and response, secure remote access, native data security, and FortiAI-assisted operations through a single agent, console, and license. By integrating with the Fortinet Security Fabric, endpoint telemetry and risk context can inform connected security controls, enabling adaptive access, consistent policy enforcement, and enterprise-wide visibility.
These capabilities define Fortinet’s endpoint security strategy for the AI era, advancing through three key innovations:
Securing AI use at the endpoint
FortiEndpoint offers centralized visibility and control over both sanctioned and unsanctioned AI applications and agents on endpoints, including installed AI apps, agents, and web-based tools. From a single dashboard, organizations can identify which agents and applications are in use, monitor adoption trends, and track user activity to uncover shadow AI, unmanaged applications, and unauthorized tool usage.
With granular guardrail policies, security teams can allow, restrict, monitor, or block applications based on corporate security, compliance, and data security requirements. This supports responsible AI adoption while reducing the risk of unsanctioned tools, sensitive data exposure, and policy violations.
Reducing AI-driven data exposure and insider risk
FortiEndpoint now includes native Data Loss Prevention (DLP) to help secure AI interactions and mitigate insider risk. It automatically inspects sensitive data exchanged with AI applications, agents, and web services. Built-in user coaching delivers real-time policy guidance, helping users understand acceptable AI usage and reduce risky behaviors without hindering productivity.
This approach prevents the leakage of sensitive information,such as personally identifiable information, intellectual property, and financial data,directly at the endpoint. By embedding DLP into FortiEndpoint, organizations can adopt AI safely while maintaining strong data security and compliance controls without adding another point product or management layer.
Unifying endpoint security, access, data security, and AI-assisted operations
FortiAI-Assist is built into FortiEndpoint to simplify administration and accelerate daily operations. Security teams can use natural language to investigate events, visualize findings, generate investigation summaries, identify high-risk devices, and troubleshoot issues. The tool also provides contextual insights, policy recommendations, and risk guidance to help analysts strengthen governance, prioritize threats, scale threat hunting, and improve efficiency through a unified management experience.
These assisted workflows are paired with adaptive zero-trust capabilities featuring dynamic risk and compliance scoring. By continuously assessing endpoint health, compliance status, and risk posture, FortiEndpoint enables organizations to make access decisions based on real-time context. Access to AI applications and protected resources can be adjusted as risk levels change, helping organizations reduce exposure, enforce consistent policy, and safely support AI-enabled work.
Industry analysts recognize the value of this integrated approach as organizations seek practical ways to govern AI use without adding more tools and complexity.
“Fortinet is addressing what many CISOs need right now: visibility into AI usage, control over sanctioned and unsanctioned tools, protection against sensitive data leakage, and real-time coaching to help employees use AI responsibly,” said Chris DePuy, Technology Analyst at 650 Group. “Delivering these capabilities through FortiEndpoint gives customers a practical way to manage AI risk with the same agent and license they already rely on for endpoint security.”
(Source: Help Net Security)




